$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/AA2BE0CC359B11F08F8F7E4AC4F9AE02.roa File: AA2BE0CC359B11F08F8F7E4AC4F9AE02.roa (raw, json) Hash identifier: cZwW8tsmFD2xtwPfekSh582VRbEv6Jvu1sqyXeWPy+U= Subject key identifier: D9:78:A7:90:B3:11:C1:81:EB:9B:22:75:F5:CE:A0:40:99:17:B9:03 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 0FFC Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/AA2BE0CC359B11F08F8F7E4AC4F9AE02.roa Signing time: Tue 20 May 2025 16:58:34 +0000 ROA not before: Tue 20 May 2025 16:58:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134153 IP address blocks: 103.138.26.0/23 maxlen: 23 103.138.26.0/24 maxlen: 24 103.138.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4092 (0xffc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: May 20 16:58:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682cb4ba-2aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:96:ab:6f:b7:3a:9e:d2:15:aa:86:7e:62:95: 81:cb:5f:98:0f:42:8d:eb:77:54:96:b5:ff:77:2f: ae:29:49:e1:c8:57:e3:83:09:8b:c3:a6:7c:b0:16: 94:77:e5:96:4b:ff:0f:fd:1a:8e:82:d2:48:55:f3: 8e:39:13:7e:32:f6:a7:d0:e6:7a:e6:a1:88:69:22: 62:6d:00:eb:61:76:4c:f0:9c:cf:82:ce:bc:d8:0c: cd:1f:13:6b:0c:32:7c:9d:c6:63:92:df:f8:9b:11: b5:23:0c:62:e0:c0:84:87:ca:72:6a:e2:46:b5:87: df:ab:ab:de:6a:91:b5:7c:49:0f:ab:fc:fc:5d:cc: 08:7e:38:21:59:28:56:ac:0d:5c:d3:43:56:9f:e1: 5b:db:5f:d6:45:f4:c1:20:96:a4:8d:22:4c:14:9e: af:66:00:3d:3f:fe:6b:9e:a9:cc:ba:b3:11:70:49: 0e:fe:b5:af:9b:0a:1c:c1:93:2e:55:1a:52:25:c9: c1:55:71:33:b8:fd:e2:d2:4e:13:10:98:21:61:7f: bd:a8:a0:c5:7d:2d:94:d9:3f:ea:69:47:23:c1:72: f2:6c:17:89:f3:69:df:f8:77:3e:fd:c8:8c:eb:82: 31:6a:d5:46:5e:b0:58:07:ad:85:40:e6:1d:11:f4: 35:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:78:A7:90:B3:11:C1:81:EB:9B:22:75:F5:CE:A0:40:99:17:B9:03 X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/AA2BE0CC359B11F08F8F7E4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.26.0/23 Signature Algorithm: sha256WithRSAEncryption 87:90:47:74:16:33:38:cb:01:e1:bf:0f:77:3b:ae:5e:9d:49: c6:2a:4f:6b:e9:e4:aa:81:40:6c:40:be:bc:80:93:4c:d1:c9: 19:fa:35:2b:ee:dc:be:b5:1b:9a:db:c0:9b:25:4c:06:ff:e8: 70:29:ef:00:fd:68:df:e2:be:dd:67:65:11:01:e8:32:a4:ae: 56:d0:73:89:21:c6:75:ab:12:14:e7:21:a7:2b:83:6b:e8:a7: 34:6a:24:ff:fc:94:8b:f4:91:22:5c:df:5e:0c:bc:6a:14:88: 44:28:56:62:34:77:58:8a:da:99:2a:11:b1:2c:82:d0:83:e3: d5:c7:8b:68:07:76:27:ac:8b:1f:03:86:d4:00:5a:1c:d6:19: 01:fa:8e:af:7f:cb:31:49:f5:6d:17:d1:4f:1c:6d:ce:f5:1d: 59:b2:1c:1c:a8:1e:7a:f4:c6:36:98:4c:36:fc:13:fb:f0:07: a9:5c:d9:6c:25:b1:16:19:35:f0:e0:ef:a5:b9:d3:bd:a2:02: 54:ec:79:4c:53:2b:10:b2:2c:0e:4e:e8:df:fc:2b:87:67:a7: b0:85:a0:90:4c:48:28:38:6e:42:81:a6:dd:c1:c9:f3:36:f8: 2b:6a:00:49:73:a6:6c:9d:96:8a:76:fb:c8:b6:1b:81:12:0f: da:29:df:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwNTIwMTY1ODM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjYjRiYS0yYWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Zarb7c6ntIVqoZ+YpWBy1+YD0KN63dUlrX/dy+uKUnhyFfjgwmLw6Z8sBaU d+WWS/8P/RqOgtJIVfOOORN+Mvan0OZ65qGIaSJibQDrYXZM8JzPgs682AzNHxNr DDJ8ncZjkt/4mxG1Iwxi4MCEh8pyauJGtYffq6veapG1fEkPq/z8XcwIfjghWShW rA1c00NWn+Fb21/WRfTBIJakjSJMFJ6vZgA9P/5rnqnMurMRcEkO/rWvmwocwZMu VRpSJcnBVXEzuP3i0k4TEJghYX+9qKDFfS2U2T/qaUcjwXLybBeJ82nf+Hc+/ciM 64IxatVGXrBYB62FQOYdEfQ19QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNl4p5Cz EcGB65sidfXOoECZF7kDMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzIvMkRDQUJBNjg1Q0YyMTFFOTg0OTM5MjI0QzRGOUFFMDIvQUEyQkUwQ0Mz NTlCMTFGMDhGOEY3RTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnihowDQYJKoZIhvcNAQELBQADggEBAIeQR3QWMzjLAeG/ D3c7rl6dScYqT2vp5KqBQGxAvryAk0zRyRn6NSvu3L61G5rbwJslTAb/6HAp7wD9 aN/ivt1nZREB6DKkrlbQc4khxnWrEhTnIacrg2vopzRqJP/8lIv0kSJc314MvGoU iEQoVmI0d1iK2pkqEbEsgtCD49XHi2gHdiesix8DhtQAWhzWGQH6jq9/yzFJ9W0X 0U8cbc71HVmyHByoHnr0xjaYTDb8E/vwB6lc2WwlsRYZNfDg76W5072iAlTseUxT KxCyLA5O6N/8K4dnp7CFoJBMSCg4bkKBpt3ByfM2+CtqAElzpmydlop2+8i2G4ES D9op3xM= -----END CERTIFICATE-----Generated at Fri Jun 6 16:53:47 2025 by rpki-client